Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2015-2546 KEV |
|
[KEV] Buffer Overflow in Microsoft win32k (CVE-2015-2546)
vulnerability in Microsoft win32k (CVE-2015-2546). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-1069 KEV |
|
[KEV] Vulnerability in Microsoft task-scheduler (CVE-2019-1069)
vulnerability in Microsoft task-scheduler (CVE-2019-1069). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-24509 |
|
Microsoft Office Visio Remote Code Execution Vulnerability
Microsoft Office Visio Remote Code Execution Vulnerability
|
| CVE-2022-24510 |
|
Microsoft Office Visio Remote Code Execution Vulnerability
Microsoft Office Visio Remote Code Execution Vulnerability
|
| CVE-2022-24511 |
|
Microsoft Office Word Tampering Vulnerability
Microsoft Office Word Tampering Vulnerability
|
| CVE-2022-24461 |
|
Microsoft Office Visio Remote Code Execution Vulnerability
Microsoft Office Visio Remote Code Execution Vulnerability
|
| CVE-2022-24462 |
|
Microsoft Word Security Feature Bypass Vulnerability
Microsoft Word Security Feature Bypass Vulnerability
|
| CVE-2022-26486 KEV |
|
[KEV] Use-After-Free in Mozilla firefox (CVE-2022-26486)
vulnerability in Mozilla firefox (CVE-2022-26486). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-26485 KEV |
|
[KEV] Use-After-Free in Mozilla firefox (CVE-2022-26485)
vulnerability in Mozilla firefox (CVE-2022-26485). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-6277 KEV |
|
[KEV] Cross-Site Request Forgery (CSRF) in Netgear multiple-routers (CVE-2016-6277)
vulnerability in Netgear multiple-routers (CVE-2016-6277). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-0631 KEV |
|
[KEV] Information Disclosure in Adobe coldfusion (CVE-2013-0631)
vulnerability in Adobe coldfusion (CVE-2013-0631). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-0629 KEV |
|
[KEV] Vulnerability in Adobe coldfusion (CVE-2013-0629)
vulnerability in Adobe coldfusion (CVE-2013-0629). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-0625 KEV |
|
[KEV] Vulnerability in Adobe coldfusion (CVE-2013-0625)
vulnerability in Adobe coldfusion (CVE-2013-0625). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-11581 KEV |
|
[KEV] Vulnerability in Atlassian jira-server-and-data-center (CVE-2019-11581)
vulnerability in Atlassian jira-server-and-data-center (CVE-2019-11581). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-21973 KEV |
|
[KEV] Vulnerability in Vmware vcenter-server-and-cloud-foundation (CVE-2021-21973)
vulnerability in Vmware vcenter-server-and-cloud-foundation (CVE-2021-21973). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-8218 KEV |
|
[KEV] Code Injection in Pulse secure pulse-secure (CVE-2020-8218)
code injection in Pulse secure pulse-secure (CVE-2020-8218). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-6077 KEV |
|
[KEV] OS Command Injection in Netgear wireless-router-dgn2200 (CVE-2017-6077)
OS command injection in Netgear wireless-router-dgn2200 (CVE-2017-6077). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2009-3960 KEV |
|
[KEV] Vulnerability in Adobe blazeds (CVE-2009-3960)
vulnerability in Adobe blazeds (CVE-2009-3960). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-38265 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2021-38265)
cross-site scripting in liferay (CVE-2021-38265). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-25146 |
|
Vulnerability in csrf (CVE-2022-25146)
vulnerability in csrf (CVE-2022-25146). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-38267 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2021-38267)
cross-site scripting in liferay (CVE-2021-38267). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-38269 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2021-38269)
cross-site scripting in liferay (CVE-2021-38269). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-38263 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2021-38263)
cross-site scripting in liferay (CVE-2021-38263). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-38264 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2021-38264)
cross-site scripting in liferay (CVE-2021-38264). Risk of unauthorized operations or information disclosure. Exploitable via ``keywords``.
|
| CVE-2018-0175 KEV |
|
[KEV] Buffer Overflow in Cisco ios (CVE-2018-0175)
vulnerability in Cisco ios (CVE-2018-0175). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-0167 KEV |
|
[KEV] Buffer Overflow in Cisco ios (CVE-2018-0167)
vulnerability in Cisco ios (CVE-2018-0167). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-1938 KEV |
|
[KEV] Privilege Escalation in org.apache.tomcat.embed:tomcat-embed-core (CVE-2020-1938)
vulnerability in org.apache.tomcat.embed:tomcat-embed-core (CVE-2020-1938). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `7.0.100` or later.
|
| CVE-2021-41379 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2021-41379)
vulnerability in Microsoft windows (CVE-2021-41379). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-0099 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2016-0099)
vulnerability in Microsoft windows (CVE-2016-0099). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-4114 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2014-4114)
vulnerability in Microsoft windows (CVE-2014-4114). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-5065 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2013-5065)
vulnerability in Microsoft windows (CVE-2013-5065). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2010-0232 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2010-0232)
vulnerability in Microsoft windows (CVE-2010-0232). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2009-1123 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2009-1123)
vulnerability in Microsoft windows (CVE-2009-1123). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2004-0210 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2004-0210)
vulnerability in Microsoft windows (CVE-2004-0210). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2002-0367 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2002-0367)
vulnerability in Microsoft windows (CVE-2002-0367). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-1675 KEV |
|
[KEV] Buffer Overflow in Mozilla firefox (CVE-2013-1675)
vulnerability in Mozilla firefox (CVE-2013-1675). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-5195 KEV |
|
[KEV] Vulnerability in Linux kernel (CVE-2016-5195)
vulnerability in Linux kernel (CVE-2016-5195). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-11826 KEV |
|
[KEV] Buffer Overflow in Microsoft office (CVE-2017-11826)
vulnerability in Microsoft office (CVE-2017-11826). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-0261 KEV |
|
[KEV] Use-After-Free in Microsoft office (CVE-2017-0261)
vulnerability in Microsoft office (CVE-2017-0261). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-7193 KEV |
|
[KEV] Buffer Overflow in Microsoft office (CVE-2016-7193)
vulnerability in Microsoft office (CVE-2016-7193). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-2545 KEV |
|
[KEV] Vulnerability in Microsoft office (CVE-2015-2545)
vulnerability in Microsoft office (CVE-2015-2545). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-1642 KEV |
|
[KEV] Buffer Overflow in Microsoft office (CVE-2015-1642)
vulnerability in Microsoft office (CVE-2015-1642). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2012-1856 KEV |
|
[KEV] Code Injection in Microsoft office (CVE-2012-1856)
code injection in Microsoft office (CVE-2012-1856). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2010-3333 KEV |
|
[KEV] Buffer Overflow in Microsoft office (CVE-2010-3333)
vulnerability in Microsoft office (CVE-2010-3333). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-8581 KEV |
|
[KEV] Vulnerability in Microsoft exchange-server (CVE-2018-8581)
vulnerability in Microsoft exchange-server (CVE-2018-8581). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2008-2992 KEV |
|
[KEV] Buffer Overflow in Adobe acrobat-and-reader (CVE-2008-2992)
vulnerability in Adobe acrobat-and-reader (CVE-2008-2992). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-3897 KEV |
|
[KEV] Vulnerability in Microsoft internet-explorer (CVE-2013-3897)
vulnerability in Microsoft internet-explorer (CVE-2013-3897). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-1347 KEV |
|
[KEV] Code Injection in Microsoft internet-explorer (CVE-2013-1347)
code injection in Microsoft internet-explorer (CVE-2013-1347). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-0632 KEV |
|
[KEV] Information Disclosure in Adobe coldfusion (CVE-2013-0632)
vulnerability in Adobe coldfusion (CVE-2013-0632). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-11292 KEV |
|
[KEV] Vulnerability in Adobe flash-player (CVE-2017-11292)
vulnerability in Adobe flash-player (CVE-2017-11292). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|